CVE-2023-28746
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
14/03/2024
Last modified:
26/04/2025
Description
Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM
References to Advisories, Solutions, and Tools
- http://www.openwall.com/lists/oss-security/2024/03/12/13
- https://lists.debian.org/debian-lts-announce/2024/05/msg00003.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H63LGAQXPEVJOES73U4XK65I6DASOAAG/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00898.html
- http://www.openwall.com/lists/oss-security/2024/03/12/13
- http://xenbits.xen.org/xsa/advisory-452.html
- https://lists.debian.org/debian-lts-announce/2024/05/msg00003.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H63LGAQXPEVJOES73U4XK65I6DASOAAG/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00898.html